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Abstract 

A method for extracting positive information from negative goals is proposed. It 
makes use of typed existence properties between arguments of a predicate to rewrite 
negative goals in a logic program. A typed existence property is a generalization of 
functional dependencies in that an input value maps to a fixed number of output 
values. Types are used to specify the domains of the input and output values. 
An implementation of the simplification method is presented and its complexity is 
analyzed. A key algorithm of the implementation checks if an atom in a negative 
goal can be extracted using a given typed existence property. A digraph links an 
atom to the quantified variables occurring in the atom and is used to quickly retrieve 
atoms in the negative goal that may become extractable after some other atom is 
extracted. 
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1 Introduction 



A challenging issue in logic programming is how to find answers to negative 
goals. Chan introduced the "constructive negation" rule which allows non- 
ground negative goals to bind variables in the same way as positive ones [7f5] . 
Many methods along this line have been proposed [Mll5llTll8ll^^ 
These methods find answers to negative goals by negating a frontier of a deriva- 
tion tree for the negated sub-goal. 
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A different approach was proposed by Cleary that makes use of existence prop- 
erties of arithmetic constraints to rewrite negative goals [9] . There are usually 
functional dependencies between arguments to an arithmetic constraint. Let 
add(x, y, z) denote z = x + y on the domain of integers, for any integers x 
and y, then there is a unique z such that add(x, y, z) is true. This is called 
an exists unique property. It implies that ->3z.add(x, y, z) is unsatisfiable and 
that -<3z.(add(x, y, z) A q(z)) can be directly simplified to add(x, y, z) A ->q(z). 
Another kind of property is called the exists sometimes property. Let log(y, x) 
denote y = 10 x on the domain of integers. Then there is at most one x such 
that log(y,x) is true. So, we can directly simplify ->3x.(log(y,x) A q(x)) to 
->Bx.log(y,x) V log(y,x) A ->q(x). The simplification procedure in [9] consists 
of rewrite rules for these kinds of property. 

The prerequisite that a functional or partial functional dependency exists be- 
tween arguments to a predicate (arithmetic constraints in j9]) is over restric- 
tive. Consider sq(x,y) in the domain of real numbers where sq(x,y) denotes 
y = x 2 . For every x, there is a unique y such that sq(x, y) is true. However, for 
every y > 0, there are two x's such that sq(x,y) is true. The rewrite rule for 
exists unique properties in j§] doesn't apply directly when it comes to simpli- 
fying -<3x.(sq(x, y) A b(x)). This problem is resolved by inserting a tautology 
(x > V x < 0) into the negative goal and transforming ->3x.(sq(x, y) A b(x)) 
into -i3xi.(sq(xi, y) A X\ > A b(x\)) A -<3x2.(sq(x2, y) A x<i < A b(x2)) and 
then applying the rewrite rule for exists unique properties to the two negative 
sub-goals. This causes difficulty because we need to have exists unique prop- 
erties for complex constraints (sq(xi,y) A X\ > 0) and (sg(x 2 ,?/) A x 2 < 0). 
Moreover, inserting a correct tautology, say (x > V x < 0), into the negative 
goal before rewriting is rather involved and difficult to mechanise. 

This paper generalizes the simplification method in |9j and presents an heuris- 
tic implementation of the generalized method. An input may now correspond 
to multiple outputs provided that each output can be isolated into a sub- 
domain that is expressed as a type. The generalized method is applicable to 
more negative goals because use of types admits more existence properties 
and therefore allows more negative goals to be rewritten. The simplifcation 
method can be applied in program transformation because it extracts an atom 
from a negative goal without executing the atom. 

A crucial task of any implementation of the generalized method is to introduce 
new local (i.e., existentially quantified) variables into an atom inside a negative 
goal so that it satisfies a given existence property. Consider ->(sq(x, 16) Ag(16)) 
and this existence property. 

For any real number x, there is a unique real number y (P) 
such that sq(x,y) is true. 
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The atom sq(x, 16) doesn't satisfy property (P) and hence cannot be extracted. 
This is because the unique y such that sq(x,y) holds is not necessarily 16. 
However, -i(sq(x, 16) A <?(16)) can be transformed to -3y' .(sq(x,y') A 16 = 
y' A <?(16)) by introducing a new local variable y' . The transformed goal can 
then be rewritten to sq(x,y') A ->(16 = y' A g(16)) since sq(x,y') satisfies 
property (P). In general cases, the task of introducing new local variables is 
much more complicated. We present an algorithm that tests if an existence 
property can be used to extract an atom by introducing zero or more new 
local variables. 

Another essential issue is how to find quickly an extractable atom inside a 
negative goal. Let Gi be sg(xj_i,Xj) and G be -3xx3x2- • • ■ 3x n 3x n+ i.[G n A 
G n -i ■ ■ ■ Gi A G\\. By repeatedly using property (P), we can extract from G 
atoms G\, G<i to G n -\ in order and obtain G\ A G2 • ■ ■ G n -\ A -^3x n+ i.G n . 
Observe that Gj becomes extractable after and only after Xj becomes global 
upon extraction of Gj-i- We use a digraph to represent a negative goal. The 
digraph links an atom to a local variable iff the local variable occurs in the 
atom. This data structure allows efficient identification of extractable atoms. 

The rest of the paper is organized as follows. Section [2] presents the generalized 
simplification method. Section [3] describes digraphs for representing negative 
goals and section H] presents the algorithm for introducing new variables. Sec- 
tion describes briefly the implementation in ECLipSe Prolog and section O 
analyzes its complexity. Section [7] discusses related work and section [S] con- 
cludes. A preliminary version of this paper appeared in Proceedings of ACM 
SAC'07, March 11-14, 2007 Seoul, Korea except section [2] that is a major 
revision of [10J. 



1.1 Notations 

We assume that negative goals are of the form —3L.G where L is a set of 
variables and G a conjunction of atoms. We also assume that variables are 
typed. Expression y:r\ indicates that variable y has type 77. A type is a finite 
expression denoting a possibly infinite set of terms. We use 1 to denote the 
set of all ground terms and the empty set of terms. Types TZ and Z denote 
the set of real numbers and the set of integer numbers respectively. Types 71 
and Z with subscripts denote their subtypes. A subscript is either an interval 
or a logical formula. For instance, Z <0 denotes the set of negative integers and 
7Z{o,i) the real interval [0, 1). Relation crp holds iff a is a subtype of 9; and 
relation a = 9 holds iff a is equivalent to 9. The intersection of two types 9 
and a is denoted as 9 n a. We forgo the presentation of a type system because 
any type system for logic programs such as [T5|20f30] can be used. We also 
assume that a set of typed existence properties are given. 
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Both existence properties and rewrite rules partition the argument list of an 
atom into several vectors. For an example, let add(x,y,z) denote x + y = z 
where x, y and z range over the domain of real numbers. For given x and y, 
there is exactly one z such that add(x,y,z) holds. The input vector 7Tj consists 
of the first two arguments x and y and the output vector tt consists of the 
third argument z. Formally, a vector is a partial function whose domain is a 
set of argument positions (positive integers). Thus, 7Tj = {1 M- x, 2 h->- y} and 
Ti = {3 i — y z}. The domain of a vector tt is denoted dom(ir). The projection 
of 7r onto D C dom(n) is denoted tt \, D. Then (tt 4- D)(i) = iv(i) ii i E D. 
Otherwise, (7r 4- D)(i) is undefined. We call tt I D a sub- vector of 7r and 
accordingly 7r is a super- vector of tt J, D. The empty vector is denoted by e. 
We have tt 4- = e for any vector tt. By an element of a vector 7r, we mean 
7r(z) for some i G dom(7r). We use diff{ix) to indicate that elements in 7r are 
pair wise different, i.e., diff(n) is true iff 7r(pi) 7^ vr(j» 2 ) for any pi G dom(ir) 
and any p 2 G dom(ir) such that pi 7^ p 2 . 111 the sequel, a letter with an over 
bar u denotes a vector of different variables, a letter with a tilde u denotes 
a vector of terms and a Greek letter with an over bar 77 denotes a vector of 
types. A vector of types is also called a type. When there is no ambiguity from 
the context, u is also used to denote the set of variables occurring in u. For 
instance, put x — {1 M- X\, 2 i-> x 2 }, we write 3^.p(x) instead of 3a;i.3x 2 .p(a;). 
By juxtaposition 7Ti7r 2 , we mean that tti and 7r 2 have disjoint domains and 
7Ti7r 2 = 7riU7r 2 . For instance, 7Tj7T = 7r 7rj = {1 1— > x, 2 \-t y, 3 1— >■ z}. Let p be of 
arity n. By p(7r), we mean that dom(n) = {l..n} and p(ir) = p(7r(l), • • • , 7r(n)). 
For instance, add(7Ti7r ) stands for add(x,y,z). When it is clear from context, 
a vector is simplify written as a sequence with positions omitted. 

By u : a, we mean that dom(u) = dom(a) and u(i):a(i) for all z G dom(u). By 
a jZ fy, we mean that dom(fj) = dom{a) and ct(z) C ^(z) for all i G dom(a). 
We say that cr and fj intersect iff a(i)\lfj(i) jk. for all i G dom(a). Let £7 be 
an expression. We use to denote the set of variables in E and type(E) the 
type of E. 



2 Generalized Method 

This section generalizes the simplification method in [9]. We first generalize 
the notion of an existence property and then the rewrite rules that make use 
of existence properties. 

One rewrite rule applies when it is known that for every input value a predicate 
holds for exactly one output value. Another applies when it is known that for 
every input value a predicate holds for at most one output value. It is not 
necessary to have the output value available in order to apply these two rewrite 
rules. What these two rewrite rules make use of is knowledge of whether for 



4 



every input value a predicate holds for exactly one output value or for at most 
one output value. 



2. 1 Typed Existence Properties 

An exists unique property in j9] expresses that, for every u, there is exactly one 
x such that p(ux) holds. In other words, predicate "p" is be a function from 
the domain of u to that of x. Parameters in u and x can be viewed respectively 
as input and output parameters. The predicate "p" may satisfy more than one 
exists unique properties with different groups of input and output parameters. 

As mentioned in section (TJ functional dependency is a strong requirement of a 
predicate in that many interesting properties cannot be expressed as functional 
dependencies. For an instance, let exp(x, y) denote y = 10 x over the domain 
of real numbers. Then exp is not a total function from y to x since there is no 
x such that exp(x, y) holds for any y < 0. This problem can be resolved by 
restricting an input to a sub-domain of its domain. For instance, the property 
that for every y > there is exactly one x such that exp(x, y) holds can be 
expressed as Wy : 7^ >0 .3!x : TZ.exp(x,y) where 3! means "there is exactly one". 
Types also admits more precise properties. For instance, the property that for 
any real number x there is exactly one non-negative real number y such that 
exp(x,y) holds can be expressed as Va; : TZ3\y : lZ> .exp(x,y). Another way 
to generalize the notion of an exists unique property is to allow an input value 
to correspond to more than one output value. A typed exists unique property 
of a predicate thus expresses that for every input value of a given sub-domain, 
the predicate holds for a fixed number of output values each of which can be 
isolated into a sub-domain. For instance, each positive number has two square 
roots one of which is positive and the other is negative. Formally, a typed 
exists unique property has the following form where J is a finite set of indices. 

\/u\a.\/x.\p(ux) — > Vi 6 /X G 9i] (1) 



Each 6i is called an output subtype of the output parameter x. Note that the 
type of an input parameter expresses the condition under which a specific 
property holds. 

Example 1 The fact that, in the domain of real numbers, a positive number 
has exactly one negative square root and exactly one positive square root can 
be expressed as the following exists unique property. 




(2) 



Wy-JZ >0 .Wx.(sq(x,y) — > x G TZ >0 V x G 7^ <0 ) 
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Vy:'Jl > o.(3\x 1 :'Jl >0 .sq(x 1 , y) A 3!x 2 :7^<o.sg(x 2 , y)) 

Example 2 The fact that the square of any real number is a positive real 
number is expressed as follows. 

Vx:K.\/y.(sq(x,y) -+ y G 1Z> ) 
Vx-Jl3\y-Jl> .sq(x, y) 

Note that we have restricted the domain of y to 7Z>o rather than 71, which 
helps avoid the introduction of local variables in some cases as explained later. 

An exists sometimes properties is generalized in the same way, so that every 
input value has at most one output value in each of a fixed number of sub- 
domains. Formally, a typed exists sometimes property is expressed by ([1]) and 

\/u:a. A ieI 37xi:6i.p(uxi) (3) 

where 3? denotes "there is at most one". Formula ([3]) requires that, for each u 
of type a, there is at most one x in each 0, such that p(ux) holds. An example 
of typed exists sometimes properties can be found in Ex. [131 

A typed exists property Wu : a.Bx : 6.p{ux) states that for every u of type a 
there are some x of type such that p(ux) holds. For instance, the append/3 
program satisfies Vz: list(/3).3x: list(/3).3y: list(/3). append(x, y, z) which states 
that every list z can be split into two lists x and y. 

A typed miscellaneous property Wu:a.(^p(u) -h- q(u)) states that, for every 
u of type a, ->p(u) can be replaced by q(u). For instance, we have \/x:Z.y: 
Z.(^(x <y)<^(x> y)). 

2.2 Rewrite Rule for Exists Unique Properties 

We now derive a rewrite rule that make uses of typed existence properties. 
Consider first typed exists unique properties. From (pQ), we have p(ux) <-> 
(p(ux) A [Vi e /x E 9i}). Hence (p(ux) A Q) <-> (\f ieI p(ux) A (x G ^) A Q). Dis- 
tributing 3 over V, renaming local variables within their scopes and applying 
De Morgan's law, we obtain 

-3xy.\p(ux) AQ] f> A iel ^3xiy.[p(uxi) A (xi G 0j) A 

provided that Vufl (xUy) = holds where Q[x/xj\ is the result of substituting 
Xi for x in Q. Note that x is renamed into x« for each output subtype 0j. 
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The condition V5 D (x U y) = ensures that w does not contain local variables. 
To see why this is necessary, assume the exists unique property for integer 
addition in the introduction, -3y : Z.(add(x, y, y) Aq(y)) cannot be simplified 
to add(x,y,y) A ->q(y) because -3y : Z.add(x,y,y) holds for x 7^ 0. The fact 
that the second argument y to add is a local variable invalidates the condition. 

For p(ux) to be extracted, its output arguments must satisfy this requirement. 

An output argument is a local variable; and for each output subtype T p 
of its corresponding output parameter, either T p is a subtype of T a or T p 
doesn't intersect with T a where T a is the type of the output argument. 

Example 3 This is an exists unique property in the domain of integers. 

Vx:Z.Vy:Z.Vz.(add(x,y,z) -> z E Z) 
WxZ S/yZ .3! zZ .add(x , y, z) 

It states that, for any integers x and y, there is a unique integer z such that 
add(x,y,z) is true. It would be wrong to use the property to rewrite -> 3z: 
Z[-oo,io]-(add(10, y:Z , z) A b(z)) into add(10, y:Z, 2:i£[-oo,io]) A -1 b(z). This is 
because z can take any value in Z and Z^^xq] is not a supertype of Z. 

The number of solutions to be negated is limited by the number of output 
subtypes of the output parameter. Some output subtypes are not relevant for 
a particular negative goal. An output subtype is relevant iff it intersects with 
the type of the local variable in the negative goal. We call an index a relevant 
index if its corresponding output subtype is relevant. We only need to consider 
relevant output subtypes when rewriting the negative goal. 

Example 4 Let G be^3x-JZ> .(sq(x,yfJZ >0 )Ab(x)). From Ex. U\ sq(x,y-JZ >0 ) 
has two solutions for x, one of them is in 7^.<o and the other is in TZyQ. This 
suggests that there are two solutions to be negated. But, the type TZ>o of the 
local variable x doesn't intersect with 7^<o, i.e., only output subtype 7£>o is 
relevant for G. G is rewritten to sq(xi:TZ > o,y:TZ > o) A -1 b(xi) since the type 
TZ>o of x is a supertype of the relevant output subtype 1Z >0 . 

The following rewrite rule makes uses of typed exists properties. It verifies 
that an input argument is of the type of the corresponding input parameter 
and that the type of an output argument is a supertype of the type of the 
corresponding output parameter. 



ET 

Given Vu:a .3x:6 .p(ux) and type(u) C a A ni = 0A^C?j 
-<3x:f].p(ux) false 
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The following miscellaneous rewrite rule verifies that an input argument is of 
the type of the corresponding input parameter. 



RT 

Given Vu:cr.(->p(u) O q(u)) and type(u) C a 
->p(u) <-> 



When the requirement on output arguments of an atom is not met, new local 
variables need be introduced so that the atom can be extracted. Consider how 
an exists unique property can be used to rewrite negative goals of the form 

-3L.\p(ux) A Q] (gl) 

where L is a set of typed variables. Assume that u is of type a (I.e. type(u) C a) 
and that variables in L do not occur in u (I.e. V^flL = 0). Then 3x.(p(ux)A{x = 
x) A Q) is equivalent to y i& i3xi.(p{uXi.9i) A (xj = x) A Q) from Goal (gl) 
is equivalent to -3L.3x .\p(ux) A (x = x) A Q] and hence is equivalent to 
^3L.[Vi£i3xi.(p(uXi:0i) A (x, = x) A Q)]. Distributing 3 over V, applying De 
Morgan's law and using (j2J), we deduce that goal (gl) is equivalent to 

A iel \p(uxi : 9i) A -BL.{(x = Xi) A Q)} (g2) 

provided that ©, ©, type(u) C a and V„ n L = hold. 

Example 5 Lei the exists unique property be that in Ex. [I] and the negative 
goal be 

-n3z':Z, x':K>2 -(sq(x', y':TZ >10 ) A Q(x', z')) {gl') 

Goal (gl') is an instance of (gl). We have L = {z':Z, x':lZ>2o}, u — y' and 
x = x' . It holds that y' G 7?.>o since y' G 7^>io and (7^>io C 7^>o). It also 
holds that V„ fl L = {y'} fl {z', x'} = 0. Therefore, (gl ') rewrites to 

' sq(xi-K >0 ,y'K >w ) A ^3z':Z,x'-Jl>2 .(x' = Xl A Q(x' , z')) 
^A sq(x2-JZ < o 7 y'-JZ > io)A -<3z':Z, x':H>2 .(x' = x 2 A Q(x' , z')) 

If type(x) doesn't intersects with 9k then p(uxk'-0k) A ->3L.((x = Xk) A Q) 
can be removed from (g2) because (x = Xf.) is unsatisfiable and any further 
instantiation of Xk has no effect on the variables of the original goal. Let 
W be the set of those elements of L that occur in x and Y = L \ W. Then 




8 



-i3L.((x = Xj) A Q) is equivalent to 

-^3\N r {x[\N/\N J ] = V (SfW/Wj] = ^) A -3Y.Q\\N/\Nj) (#3) 

where W,, is a renaming of W. The disequality constraint -i3Wj.(x [W/Wj] = x^) 
can be dealt with by augmenting Chan's simplification procedure with types. 

Example 6 Continue with Ex. We have W = {x':lZ>2o}> Y = {z':Z} and 
J = {1}. The output subtype 7Z <0 is not relevant since (type(x') n 7Z <0 ) = 0. 
The sub-formula -3z':Z, x'-JZ>2o-(x' = x\ AQ(x',z')) in (g2 ? ) can be rewritten 
to -3wi:1Z>2o.(wi = x\) V (wi m Jl>2o = ^i) A -3z r 'JZ.Q(wi, z'). 

A new local variable is introduced for each output argument in (g3). As the 
cost of simplifying -i3Wj.(5[W/Wj] = Xj) increases with the number of equa- 
tions it contains, it is desirable to avoid introducing new local variables when- 
ever possible. No new local variable need be introduced for an output argument 
r if r is a local variable, its type is a super-type of all relevant output subtypes 
and it doesn't appear in any other output argument. 

Example 7 Continue with Ex. Variable x' is a local variable. Its type is 
TZ>2o- The only relevant output subtype is IZyo- A new local variable was in- 
troduced because 7£>2o is not a super-type of 7^>o. 

Example 8 The following is an exists unique property in the domain of in- 
tegers. 

Wx:Z.y:Z.Wz.(add(x,y, z) — >• z G Z) 
Vx:Z.y:Z3\z:Z.add(x, y, z) 

It states that, for any integers x and y, there is a unique integer z such that 
add(x, y, z) is true. It would be wrong to use the exists unique property to 
rewrite -> 3z:Z[_ oo>10 y(add(10, y:Z, z) A b(z)) into add(10, y:Z, z-.Z^^^) A 
-i b(z). This is because z can take any value in Z and .£[-00,10] not a super- 
type of Z. 

Example 9 The fact that, in the domain of real numbers, a positive number 
has exactly one negative square root and exactly one positive square root can 
be expressed as the following exists unique property. 

\/y-JZ > Q^/x.(sq(x,y) — > x G 7^ >0 V x G TZ <0 ) 
Vy-3l >Q .(E\x 1 -H > o.sq(x 1 ,y) A 3\x 2 ^l < o-sq(x 2 , y)) 

Let the negative goal to rewrite be the following. 

-<3x:K>o.(sq(x,y:Tl >0 ) A b(x)) 
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QVT 


Given ©, ©, type(u) C a and V s n L = hold 


-GL[p(us&) A Q] <-> 










' let J 


= {iEl \ type(x)ndi 0} 










V 


C \jp | p £ aom(x) A x(p) G L A Vj € J.(t/j(p) 
sum that aiff [x 4- holds 


C iHpe(5(p)))} 










= dom(x) \ u, f = x I v, s = x \. fj. 










W 

in 

\ 


= (l_nV s )\F, Y = L\W 










piuizjf^) A^3\N j .(s[r/r j ,\N/\N J ] = 
v V p(u[zjfj]:0j) A (s[f/fj,\N/\Nj} = zj) A 


-.HY.Qtf/fj-.W/W^ 


1, 








Fig. 1. Rewrite rule QVT for exists unique 


properties. 







where the type of a variable is associated with its first occurrence. By the above 
exists unique property, sq(x, y:TZ>o) has two solutions for x, one of them is in 
7?.<o and the other is in TZ>o- This suggests that there are two solutions to be 
negated. But, the type TZ>o of the local variable x doesn't intersect with 7Z<:o, 
that is, only output subtype 1Z >0 is relevant for the negative goal. The negative 
goal is rewritten to 

sq{x 1 -ni > Q,y-n >0 ) A -i b{x x ) 

since the type 1Z> of x is a super-type of the relevant output subtype 1Z >0 . 

The above considerations lead to the rewrite rule QVT for exists unique 
properties in Fig. [TJ The condition type{u) jZ o A V„ fl [x U y) = in the 
rewrite rule ensures that an input argument is of the type of its correspond- 
ing input parameter and it doesn't contain any local variables. QVT gener- 
ates only sub-formulae for relevant output subtypes which are collected by 
J = {i G / | (fj n 6i) ^ 0}. Variables in Zjfj and \Nj do not occur in the 
left hand side of the rewrite rule. The vector zjfj is typed with 8j while \Nj 
inherits the type of W. The vector f consists of different variables; and it is a 
sub-vector of x for which no new local variables need be introduced. 

Example 10 Continue with Ex. U\ and Ex. QVT rewrites (gl') directly to 

sq{xiJl >0 ,y'-R >1Q ) A -^3w 1 :Ti>2o.(w 1 = x x ) 
V sq{xi.TZ >0 , y':TZ >10 ) A {wiK> 2 Q = a?i) A ^z':Z.Q{w u z') 

Example 11 The append/ 3 program satisfies this exists unique property. 
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Wdist^), y:\\st({3).z.(append(x, y, z) — > z:list(/3)) 
Vx:list(/?), y:\\st((3)3\z:\\st(f3).append(x, y, z) 

Goal -^3z:\'\st((3).(append(x:\\st(/3), y:list(/3), z),p(z)) is rewritten to appendix: 
\\st((3),y:\\st((3),z:\\st((3))^p(z) by QVT. 

When QVT is used as a simplification rule, it will prune unsatisfiable goals 
without doing a satisfiability test. 

Example 12 We have Vy:l.x.(x = s(y) — > x:l) and Vy:13\x:l.(x = s(y)) in 
the domain of Herbrand universe. Consider the following program. 

p(y). 

r(y) :- x=s(y) ,q(x) . 

The goal p(y:l),-i r(y) is reduced to p(y), -iBx:l.(x = s(y:l),q(x)) which is 
then simplified directly into x:l = s(y),p(y:l), -> q(x) using the above property. 
Without using this property, ->3x:l.(x = s(y:l),q(x)) is simplified to 

Wx:l.(x 7^ s(y:l)) V (x:l = s(y:l), -> q(x)) 

and a satisfiability test is then used to eliminate V x:l.(x 7^ s(y:l)). In that 
sense, the satisfiability test is pushed into the simplification procedure by the 
exists unique property. 

2. 3 Rewrite Rule for Exists Sometimes Properties 

The same considerations as in the case for exists unique properties lead to the 
rewrite rule SVT for exists sometimes properties in Fig. [2J 

Example 13 The fact that, in the domain of integer numbers, a positive num- 
ber has at most one negative square root and at most one positive square root 
can be expressed as the following typed exists sometimes property. 

Vy:Z >0 .Vx.(sq(x, y) -> x E Z <0 V x E Z >0 ) 
\/y:Z >0 .(31x 1 :Z <0 .sq(xi,y) A 31x 2 Z >Q .sq(x 2 , y)) 

The local variable x in the negative goal -3x:Z[ 0) 20}-(sq(x,y:Z > o) A b(x)) has a 
type Z\ 0j 20] which is not a super-type of the sole relevant output subtype Z >0 of 
the corresponding output parameter. Therefore, a new local variable z 2 of type 
Z >0 is introduced and the negative goal is rewritten to the following. 

^3z 2 Z >0 .sq(z 2 ,yZ >0 ) 
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SVT 


Given ©, ©, type(u) C a and V s n L = hold 


-GL[p(u£) AQ] H 








let J 


= {^Gi type{x) n ^ 0} 


\ 






V 


,— r 1 _j / , ~\a~/\^IaW'^-t/77/\i — ± I f \\\ 1 

C {p p G aom(x) A x(pj E L A V j G J.(Uj(p) E ty , pe\%{p)))j 

7 I 7 / 7 ' rV / ~" 1 \ 7 7 7 

sttc/i rn,ai cm/j (x 4, i/) holds 










= dom(x) \u, f = x -\rV, s = i|/i 








w 


= (LnV s )\f, Y = L\W 








in 


^ -^3(zjfj):6j.p(uzjfj) ^ 










V p(i%fj]:0j) A -.3Wj-. (s[f /fy, W/Wj] = %) 








V 


V V p(«[%r,]:%) A (S[f/fj, W/W,-] = Zj) A -3Y.Q[f/f jf W/W,-]^ 


/ 





Fig. 2. Rewrite rule SVT for exists sometimes properties. 



V sg(z 2 :2 >0 , y:2 >0 ) A -n3x:Z [0t20 ].(x = z 2 ) 

\/ sq(z 2 :Z >0 ,y:Z >0 ) A (x:Z[ , 20 ] = z 2 ) A -i 6(^) 

Chan's simplification rule can be formalized by a set of exists sometimes prop- 
erties as follows. 



Vx-.l.yt-.l ■ ■ ■ y n :l.(x = s(y u ■ ■ ■ , y n ) yi G 1 A • • • A y n e 1) 

Vx:1.3?yi:l • • • y„:l.(x = s(j/i, • • • , y„)) 

These satisfy ([I]) and (j3J) and allow SVT to be applied. 

There is no rewrite rule with introduction of local variables for exists prop- 
erties because introducing local variables won't lead to simplification. Let 
-i3\Nf.p(usf) be the negative goal. Suppose we have \/u : a 3s : ipf : uj .p(usf) 
and (type(u) C a) A V„ fl (W U f) = A Q C type(f). By introducing local 
variables z:?/>, the negative goal is equivalent to ^3\Nzf.(p(uzf) A z = s). 
Applying (SVT) rewrite rule with the property that (z = s) has at most one 
solution, we end up with -3\Nz.(z = s) V (z = s) A -3f .p(uzf) . The negative 
goal -<3f .p(uzf) can't be rewritten using (ET) because z are not local vari- 
ables in it. Thus, introducing new local variables doesn't help. Introduction of 
local variables is irrelevant to the miscellaneous rewrite rule as miscellaneous 
properties have no output parameters. 
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3 Digraph 



The rewrite rules (ET) and (RT) are applied to negative goals that are nega- 
tion of single atom and do not involve introduction of local variables. Their 
implementation is much easier than the other two rewrite rules and will not 
be considered. 

The rewrite rules QVT and SVT can be applied repeatedly to extract positive 
information from a negative goal -dW.G n , • • • , G 2 , G±. A naive implementa- 
tion would repeatedly scan a conjunction of goals and check if an atom is 
extractable. After an atom is extracted, some local variables become global, 
making it necessary to check if other atoms are extractable. That would result 
in an inefficient implementation because most of those checks would fail. 

A previously inextricable atom becomes extractable only after some of its 
local variables become global or some of its global variables are given a value 
or a smaller type. However, neither QVT nor SVT changes the type of global 
variables, nor will it assign any value to them. So, after an atom is extracted, 
it is only necessary to check those other atoms that share with the extracted 
atom some variables that have become global. For that reason, we use a list 
$ consisting of atoms to be checked and a digraph T> which links each atom 
with the local variables it contains. The method repeatedly removes one atom 
from $ and checks for its extractability until $ becomes empty. Digraph V 
is used in order to quickly retrieve the local variables an atom contains and 
the atoms containing a particular local variable. After an atom is extracted, 
it is moved out of the scope of the negation and the local variables it contains 
become global. This is done by removing the atom and the local variables 
from V. Before the removal of the local variables, other atoms linked to them 
are added to $ as their extractability need to be checked for again. Initially, 
every atom need to be checked. 

Let us first consider the case where an existence property has one output 
subtype for its output parameter. When an atom is extracted by QVT or 
SVT without introducing any new local variable, it is moved out of the scope 
of the negation and the local variables in it are promoted to being global. The 
atom is deleted from <3> and T>. The other atoms that are linked to the local 
variables are then added into $ and the local variables are deleted from V. 
The method continues with the updated V and $. 

Example 14 Let p be of arity 2 with the following exists unique property. 
Vx:l.Vy.(p(x, y) — > y G 1) and Vx:13\y:l.p(x,y) 

Let Gi = p(xi, x i+ i). The negative goal -dx 2 :l. • • • x n+ i.l.(G n , • • • , Gj, • • • , G±) 
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is such that extracting Gi makes Gi+i extractable. A naive implementation of 
QVT does n( - n ~ 1 *> tests by testing G n for n times, G n _i for n — 1 times and so 
on. The negative goal has the following graph. 





The proposed implementation works as follows. Initially, $ contains G n , • • • , G\ 
that are removed from $ and tested in that order until G\ is extracted. At that 
point, only G 2 is added to $ ; it is then immediately removed and tested. Ex- 
tracting G2 adds G3 into $. This process continues until G n is tested and 
extracted, proving the falsity of the original negative goal. A total of (2n — 1) 
tests are performed with G\ being tested once and each Gi for 2 < i < n twice. 

When an atom is extracted by QVT or SVT by means of introducing local 
variables, only some local variables become global and the derived goals are 
more complex. However, the residual negative subgoals can be obtained in the 
same way as above. 

When the output parameter of an existence property has more than one output 
subtype, several complex goals may be derived from the negative goal. Each 
of these complex goals may contain a number of residual negative subgoals 
to which QVT or SVT may be applicable. However, these residual negative 
subgoals differ only in the names and types of newly promoted global variables. 
So, the digraph and the checklist for each of these residual negative subgoals 
are obtained in the same way. 



4 Extractability 



Given an atom inside a negation and an existence property, QVT and SVT 
have to decide if the atom satisfies the existence property and, if so, de- 
cide for which output arguments new local variables need be introduced. 
The rules QVT and SVT differ only in that SVT has an extra disjunct 
-3(zjfj):0j.p(uZjfj) for each relevant output subtype. Otherwise, they are 
the same. The common functionality of QVT and SVT is factored out to a 
function sqvt. It tests if an atom satisfies an existence property, introduces 
new local variables, decides if an output subtype is relevant, and renames and 
types local variables. 
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function sqvt(P, G, L) 
begin 

(01) Let G be q{- ■ ■ , t u , ■ ■ ■ , t x , ■ ■ •) and P be (p(- • • , i(a), • • • , o(0), •••),/); 

(02) if q = p and (type(t u ) C a) A (V tu fl L) = for each i u matching an i(cr) 

(03) then 

(04) f := e; x m := e; z := e; 5 := e; W := m7; J := I; 

(05) for each t x matching an o(0) do J := Jfl {A; | (type(t x ) n 9(/c)) ^ 0} od; 

(06) for each t x at position p matching an o(G) do 

(07) if t x e (L \ f) A Vj G J.(6(j) C ^e(txO) 

(08) then 

(09) f := f[p \-> t x ]] 

(10) x m := x m [p ^ (t x , 0)]; 
(11) else 

(12) s := s[p \-> t x ]; 

(13) for each u G ((V fe n L) \ (f U W)) do W := v :: W od; 

(14) z := newv(l); z := z[p h-> z]; G := Gft^/z]; 

(15) x m := x m [p ^ (z, 0)] 
(16) fi; 

(17) od; 

(18) x := map(fst,x m ); 

(19) x cs := \J je j{map{Xe.newv{{snd{e)){j)),x m )}] 

(20) return (G, x, x cs , s, z, f, W) 

(21) else return nil 

(22) fi 
end; 

Fig. 3. The sqvt function where x :: L is a list with head x and tail L. 

An exists unique property is represented as follows. Each input parameter u:a 
in u : a is represented by i(er). Each output parameter x in x with output 
subtypes {6k \ k G 1} is represented by o(0) where is a mapping which 
maps k in / to An exists unique property has the following representation 
where input and output parameters may be interspersed. 

(p(...,i(<7),...,o(e),...),/> 



The set of exists unique properties is denoted by IY We use the same represen- 
tation for an exists sometimes property and denote the set of exists sometimes 
properties by T?. 

Example 15 The exists sometimes property in Ex. [73] is represented by this 
item m iy (sg(o({l Z <0 , 2 ^ Z >0 }), i(Z >0 )), {1, 2}). 

Fig. [3] defines sqvt with the following auxiliary functions. A call to newv(T) 
creates a new variable of type T. Given a pair, the function fst returns the 
first component while snd returns the second. The high order function map 
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applies a function / to a vector it point-wise: map(f,7r)(i) = /(vr(i)) for each 
% G dom(ir) and dom(map(f , it)) = dom(ir). 

Given an existence property P of the form (p(- ■ • , i(cr), • • • , o(B), •••),/) and 
an atom G of the form g(- • • , t u , ■ ■ ■ , t x , ■ ■ -) and a set L of local variables, sqvt 
first checks if it is possible to replace some output arguments in G with newly 
introduced local variables so as to make G satisfy P. Since a new local variable 
can be introduced for any output argument in G, G can be made to satisfy P if 
q = p and each of its input argument is of the type specified by P and contains 
no local variable. The test is done in line (02). Function sqvt returns nil from 
line (21) if this test fails. Otherwise, sqvt classifies every output argument 
according to whether a new local variable need be introduced for it or not. 
The variable f holds the vector of output arguments for which no new local 
variables need be introduced, s is the vector of other output arguments and 
z is the vector of corresponding newly introduced local variables. Whenever a 
new local variable z is introduced for an output argument t x , sqvt substitutes 
z for t x in G. The function sqvt collects the list W of the local variables that 
occur in s but not in f. It also builds up the vector x m of the new output 
arguments each of which is associated with a mapping from indices in / to 
types and collects the set J of relevant indices for G. Line (04) initializes these 
vectors and sets. Line (05) computes the set J of relevant indices. The (06)- 
(17) loop iterates through all output arguments. Line (07) determines if it is 
necessary to introduce a new local variable for the output argument t x under 
consideration. If not, line (09) adds t x into f and line (10) adds to x m a pair 
consisting of t x and the mapping for the corresponding output parameter in 
P. Otherwise, line (12) adds t x to s, line (13) adds to W the local variables in 
t x that do not occur in f or W, line (14) introduces a new local variable z of 
type 1, adds z to z and substitutes z for t x in G, and line (15) adds to x m a 
pair consisting of z and the mapping for the corresponding output parameter 
in P. The newly introduced local variable z in line (14) will be renamed and 
attached with an appropriate type from the mapping paired with it in x m . 
Line (18) extracts the vector x of the new output arguments of G. Line (19) 
makes, for each relevant index in J, a new copy of x and types the copy with 
an appropriate type, and collects the set x cs of all the copies made. For a fixed 
index j G J, line (19) does the following for each pair in x m . It first takes the 
second component of the pair which is a mapping from indices to types, then 
finds the type for the index j, and creates a new variable of that type. Line 
(20) returns with required information. 

Example 16 Continue with Ex. [75j Let G = sq(x:2[ 2o],y'Z >0 ) and L = {x: 
^[0,20]}- Then sqvt(P,G,l) = (G',x,x cs ,s,z,f,\N) with G' = sq(z:l,y:Z >0 ) , 
x = z:l, x cs = {z 2 :Z >0 }, s = x:Z^ 2 o\, z = z:l, f = e, and W = {x:Z[ 0i2 o]}- 

Lemma 17 The time complexity of the test for the extractability of an atom 
with respect to an exists unique or exists sometimes property is linear in the 
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size of the atom. 

Proof. The time complexity of the function sqvt is proportional to the size of 
the atom, given an atom and an existence property. When an atom is tested 
for its extractability, it may be necessary to match it against several different 
existence properties before it can be decided whether or not it is extractable. 
When it is not extractable, it has to be matched against all those existence 
properties that have the same predicate symbol as the atom. The number of 
the existence properties that have the same predicate symbol as an atom is 
bounded, which implies the time complexity of the test for the extractability of 
an atom is proportional to the size of the atom. 

The following theorem gives the correctness of sqvt. In addition, it states that 
sqvt introduces a new variable only when it is necessary. 

Theorem 18 Let P be an exists sometimes (resp. exists unique ) property, 
G an atom, Q a conjunction of goals and L a set of variables. 

a) Atom G can be extracted from 3L(G AQ) by SVT (resp. QVT) using P iff 
sqvt(P,G, L) ^ nil. 

Furthermore, letting sqvt(P, G, L) = (G", x, x cs , s, z, f, W), 

b) f, s, z and W are as in SVT (resp. QVT) and f is maximal in the sense 
that any proper super-vector of f will include at least one output argument 
of G for which a new variable must be introduced; 

c) G' = G[s/z}; 

d) x is the vector of the output arguments of G' ; and 

e) x cs is a set of vectors with each being a fresh copy of x typed by an output 
subtype of P that is relevant to G. 

Proof. Postulate (a) follows from the conditional statement beginning at line 
(02). Line (05) computes the set J of relevant indices since two vectors of 
types with the same domain intersect iff their corresponding components at 
each position in the domain intersect. The logic of the loop beginning at line 
(06) ensures that f, s and z are computed correctly without computing their 
corresponding sets of indices and it also ensures the maximality off. Therefore, 
postulates (b) and (c) hold. The postulates (d) and (e) follow from lines (18) 
and (19) respectively. 



5 Implementation 

With a negative goal being represented by neg(§,V) where $ is the checklist 
and V is the digraph, QVT and SVT are implemented as a derivation rule 
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^■sqvt which derives from the lefthand side of QVT (respectively SVT) each 
conjunt in a disjunctive normal form of the righthand side of QVT (respec- 
tively SVT). Let loc(V) be the set of local variables in V, delete(Ns,V) be 
the result of deleting nodes in Ns from V, link(N, Ns, V) be true iff V links 
node N with some node in Ns. 

• ct, neg({G} U $, V),f3 <-^ sqvt a, N h (3 for each 1 < I < k if 

3P G Fi.sqvt(P, G, loc(V)) = (G f , x, x cs , s, z, f, W) and N ± V N 2 V • • • V N k is 
a disjunctive normal form of 



A 



X 1 (izXcs 



let W = mapinewv o type, W) in 



( 



G' A -.3W'.(s[W/W] = z))[x/x'\ 
V G A (s[W/W'] = z))[x/x'\ A ne5($',I> / )[W/W / ][x/x'] 



where $' = $U{iV | link(N, fUW, £>)}\{G} and X>' = <ie/ete(fUWU{G}, V). 
The above formula corresponds to the righthand side of QVT in that x' 
corresponds to Zjfj and W to \Nj. Note that and W are typed when they 
are created. 

• a, neg({G} U $,£>), /3 ^ sqvt a, N h f3 for each 1 < I < k if 

3P G r ? .sgwt(P, G, Zoc(£>)) = (G', x, x cs , s, z, f, W) and JVi VJV 2 V • • • V N fc 
is a disjunctive normal form of 



A 



x'€x c 



let W = map(newv o ^pe, W) in 
' -.3x'.G / [x/x / ] 
VGA -aW.fSfW/W] = 

G A (5[W/W] = A ne^($ / ,P')[W/W / ][x/x / ; 



\ 



/ 



where $' = $U{iV | link(N, fUW, £>)}\{G} and £>' = rfe/ete(fUWU{G}, P). 

• a, neg({G} U$,V),/3 ^ sqvt a, neg(§, V),(3 

if VP G ri ur?. sqvt(P, G, loc(V)) = nil. This rule removes from the checklist 
an atom which doesn't satisfy any existence property. 

• ol, neg(0, A), (3 ^ sq vt false where A is the empty digraph. Note that neg(0, A) 
represents -itrue. 

Example 19 The goal -i3:r:7?.[_20,20] -u:1Z> . (sq(x, y:lZ >0 ) A add(x, u, — 1)) is 
represented as P below where the checklist is depicted as a group of pointers 
to atoms. 



F = neg( 




c [-20,20] 



Using (!') and (2'), we have P ^ sqvt Pi, F ^t sqvt F 2 , F ^ sqvt F 3 and 
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Fq ^sqvt F4 and {Fi, F 2 , F 3 , F 4 } is a frontier of F where 



F 1 = sq{z 1 -Jl < Q,y-Jl > Q) A ^3xi:7^[_2o,2o]-(^i = ^1) 

Asq(z 2 :K >0 ,y) A -^3x 2 JZ^ 20t20 ].(x 2 = z 2 ) 
F 2 = sq(z 1 :Tl <0 ,y:Tl >0 ) A -i3xi:7^[_ 2 o,20]-(^i = ^1) 

Asq(z 2 :Tl >0 ,y) A (x 2 :7?-[-2o,20] = ^2) A F 6 
F 3 = s?(zi:7^ <0 , y-Tlyo) A (zi^-^o] = ^1) A F 5 

Asq{z 2 :TZ >0 ,y) A -i3x 2 :7^[_ 20i20 ]-(2;2 = ^2) 
F 4 = sgf(zi:7?. < o, y-Tt >0 ) A (xi:7^[_ 20 , 2 o] = ^l) A F 5 

Asq(z 2 :Tl >0 ,y) A (x 2 :^[_ 20i20 ] = ^2) A F 6 



T/ie following is an exists unique property for addition. 
\/x\1Z.y\1Z.z.(add(x, z, y) z eTZ) 
\/x:1Z.y\1Z3\ z:1Z.add(x , z, y) 

Using this property, we have 

F 5 ^-sqvt add(x 1 :K[- 2 Q^Q\,vi:Tl,-l) A -Bu\ : 1Z>q.{u\ = v x ) and F 5 ^ sq vt 
add(xi.7l[^ 2 o t2 o],vi:7l, — 1) A (u\:1Z>q = v\) A neg(®, A) and F 6 ^ sqv t add{x 2 . 
Tl[-20,20],v 2 :Tl, -1) A ^3m 2 :^> .(m 2 = t> 2 ) and i*6 ^sqvt add(x 2 :TZ[- 20t20 ],v 2 : 
71, — 1) A {u 2 .1Z>q = v 2 ) A neg(®, A). Since the subgoals ^3ui.1Z>q.{ui = Vi.TVj 
and ->3u 2 :7Z>o.(u 2 = v 2 JZ) are equivalent to type constraints Vi:lZ <0 andv 2 :lZ <0 
respectively and neg(0, A) is unsatisfiable, {add{x\.Tl^_ 2 Q^Q\, Vi.TZ^, — 1)} is a 
frontier of F 5 and {add{x 2 .TZ^ 2 Q^ 2 Q], v 2 JZ <0 , — 1)} is a frontier of F 6 . 

-i3rci : 7^20,20] .{xi = Zi:lZ <0 ) is equivalent to type constraint z 1 : 7^<(_ 2 o); 
and -3x 2 : ^[-20,20] -(^2 = ^2 : ^>o) ^ ^ 2 : 7£ >20 , Solving (x l : 7£[_ 20 , 2 o] = 
Zi:lZ<o) restricts the types of both x\ and z\ to 7£[_2o,o) whilst solving (x 2 : 
^-[-20,20] = z^.lZyo) restricts the types of both x 2 and z 2 to 7£(_2o,o]- Therefore 
{F 7 , F$, Fg, F10} is a frontier of F where 

F 7 = sq(ziJl < {- 2 Q),y-Jl > o) A sq(z 2 :K. >20 , y) 

F 8 = sq(z 1 -JZ < ^ 2 o),y:TZ >0 ) A sq(z 2 JZ^ 20 , ],y) A add(z 2 , v 2 JZ <0 , -1) 



with 
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F 9 = sq(ziJli_20fl),yK>o) A add(zi, ViJZ <0 , — 1) A sq(z 2 :TZ >2 o, yfc) 
F w = sq(zi?R.i-2o,o),yfc>o) A add(z x , viK <0 , -1) 
Asg(2 2 :7^(_20,o] , y) A add(z 2 , v^.TZ^, -1) 

Aote t/iat none of F7, Fg, Fg and Fiq contain a negation! 

We have implemented in ECLiPSe [I] a prototype simplification system that 
also implements Chan's constructive negation rule. A type is associated with a 
variable as an attribute [3J. The top-level of the simplification system is neg/2. 
neg(G,L) is true iff -3L.G is true. It constructs a digraph representation for 
SL.G and applies ^- S qvt repeatedly until no rewriting can be done. It then 
displays the derived goal. 

Example 20 This example illustrates a session with the prototype. Term 
real(l,u) encodes type lZ{i tU \- 

[eclipse 2] : neg((sq(X:real(-0.5,0.5) ,U) , sq(Y:real(-l , 1) ,V) , 

add(U,V,W:real(0,l))), [U,V]). 

sq(Y:real(-l, 1), VI: real), add (Z: real, VI: real, W:real(0, 1)), 
sq(X: real (-0.5, 0.5), Ul:real), neg_eq(Z : real , Ul:real, [] ) ; 

no (more) solution. 

I.e., ~^3U : l.V : l.(sq(X:TZ[- , 5 fi.s\,U), sq(Y:lZ[-i tl ], V), add(U, V, W:7£[ ,i])) 
rewrites to sq(Y:TZ[_i^, V1:1Z), add(Z:lZ, VI, WilZ^iy), sq(X :TZ[^s,o.S\, Ul: 
TV), Z 7^ Ul. The prototype incorporates existence properties of arithmetic con- 
straints. The programmer may provide existence properties as in the following. 

[eclipse 3] : declare_existence_property( 

eu(append(i (list (Beta) ) , i (list (Beta) ) , o( [(1 ,list (Beta) )] ) ) , [1] )) , 
declare_existence_property ( 

eu(sort(i (list (Gamma) ) ,o( [(1 , list (Gamma) )] ) ) , [1] ) ) , 
neg( (append (X: list (real) , Y : list (real) ,Z) ,sort(Z,W) , b(W)) , [W,Z] ) . 

append (X : list (real) ,Y:list(real) , Z : list (real) ) ,sort(Z,W) ,neg(b(W) , [] ) . 

no (more) solution. 

Example 21 [eclipse 1]: RGtO = and (real (O.pinf ) , not (real (0, 0) )) , 
type_set(X,real(-20,20)) , type_set(Y, RGtO), 
type_set (U,real(0,pinf )) , 
neg([Y] ,(sq(X,Y),add(X,U,-l))), 
delayed_goals (L) , print (L) , nl . 

sq(Zl :real(0,pinf ) and not (real (0,20)) ,Y:real(0,pinf ) and not (real (0, 0))) , 
sq(Z2:real(minf ,0) and not (real (-20,0)) , Y:real(0,pinf ) and not (real (0,0))) ; 
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sq(Zl :real(0,pinf ) and not (real (0 , 20) ) , Y:real(0,pinf ) and not (real (0 , 0) )) , 
sq(Z2: real (-20,0) and not (real (0,0)) , Y:real(0,pinf ) and not (real (0 , 0) )) , 
add (Z2: real (-20,0) and not (real (0 , 0) ) , V2:real and not (real (0 ,pinf) ), -1) ; 

sq(Zl : real (0,20) and not (real (0 , 0) ) , Y:real(0,pinf ) and not (real (0 , 0) )) , 
add (Zl : real (0,20) and not (real (0, 0) ) , Vl:real and not (real (0, pinf )) ,-1) , 
sq(Z2:real(minf ,0) and not (real (-20 , 0) ) , Y:real(0,pinf ) and not (real (0 , 0) ) ) 

sq(Zl :real(0,20) and not (real (0 , 0) ) , Y:real(0,pinf ) and not (real (0 , 0) )) , 
add (Zl : real (0,20) and not (real (0, 0) ) , Vl:real and not (real (0, pinf )) , -1), 
sq(Z2: real (-20,0) and not (real (0, 0) ) , Y:real(0,pinf ) and not (real (0 , 0) )) , 
add (Z2: real (-20,0) and not (real (0 , 0) ) , V2:real and not (real (0 , pinf )) , -1) 

no (more) solution. 



6 Time Complexities 

Given a negative goal, a ^ sqv t derivation step extracts an atom out of a 
negation and produces several residual negative goals which are then processed 
in subsequent derivation steps. The time complexity of ^ sqv t with respect to 
a negative goal is measured by the time spent on all possible derivations from 
the negative goal. 

Our analysis is based on a notion of a spawning tree SPT G for a negative goal 
G. The nodes in SPT G are negative goals that are derived from G by repeated 
applications of ^ sgv t- Let G' be a node SPT G and G" occurs in one of the 
conjunctive goals derived from G' by ^ sqvt - Then G" is a child of G' . 

Let the negative goal G consist of m atoms with non-decreasing sizes Sj, 1 < 
i < m. Consider the time complexity of ^ sqv t- We weight the i th atom in G 
by the number Wi of those atoms that share local variables with the i th atom 
and are smaller in size than the i th atom. 

Some branches in SPT G result from failed extractability tests. The parent 
node linked by such a branch has exactly one child and is called futile. Other 
nodes correspond to successful extractability tests and are called fruitful. The 
set of fruitful nodes in SPT G is dentoed Fr(SPT G ). Let s n d is the size of the 
atom that is extracted at a fruitful node nd and w n d the weight of the atom. 

Theorem 22 Let G be a negative goal. 

(1) The time cost of the extractability tests performed along a path in SPT G 
is 0(^ =1 ( Wi + l) x Si ). 
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(2) The time cost of all ^r S qvt derivations from G is 0(T> n d e Fr(SPT G ){w n d + 
1) * s nd ). 

Proof. Consider (1) first. We only need to consider the worst case where each 
atom in G will finally be extracted. At the root, every atom in the digraph G 
is in the checklist. The time complexity of the extractability tests performed 
at the root is thus 0(£jSj). An atom is added into the checklist only after the 
removal of some local variable linked to the atom. Therefore, an atom may 
be tested for its extractability for as many times as one plus the number of 
atoms with which the atom share a local variable. However, in the worst case 
smaller atoms are extracted before larger atoms. Thus, the i th atom can only 
be tested for W{ + 1 times. Therefore, the time complexity of one derivation is 
OCEi(wi + l) x Si ). 

Now consider (2). Since each instance of atom which is extracted at node nd is 
tested at mostw n d+l times and each test costs s n d unit of time. Thus, the total 
cost of tests in all^- sqvt derivations from G is 0(T lndeFr .( S PT G )(. w nd + 1) * s n d) ■ 



7 Related Work 

Apart from Cleary's original work most related works are those on con- 
structive negation. The basic idea of Chan's constructive negation approach [7][8] 
is that answers to -> Q are obtained by negating answers to Q. Given -> Q, a 
frontier of a derivation tree for Q is first obtained. Answers to -> Q are then ob- 
tained from the frontier as first-order formulae which are interpreted in Clark's 
equality theory (CET). Chan's method was formulated for logic programs in 
the Herbrand universe and involves introducing disequality constraints over 
the Herbrand universe. An answer to a goal by Chan's operational semantics 
SLD-CNF is a set of equality and disequality constraints. Originally, Chan's 
method applied only to negative goals with finite sub-derivation trees and 
worked by negating answers to the negated sub-goal [7J. Chan later extended 
his method by negating a frontier of a derivation tree for the negated sub- 
goal [8]. The simplification procedure in Chan's method relies on the following 
property of the Herbrand universe. 

-Byz.{x = s(y) A Q{yz)) <R> Vy.{x ^ s{y)) V 3y.(x = s(y) A -Bz.Q(yz)) 

where x is a free variable and y and z are disjoint. Munoz- Hernandez et. al. 
refined Chan's method and incorporated it into Ciao Prolog [25]. They also 
implemented other negation methods [21] and use static analysis to select the 
appropriate negation method for a negative goal [2"5] . 
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Maluszyriski and Naslund put forward another approach to constructive nega- 
tion which allows a negative goal to directly return fail substitutions, as its an- 
swers [TS] . Since answers to negative goals cannot in general be represented by 
a finite number of substitutions, Maluszyhski and Naslund's approach some- 
times need to return an infinite number of fail substitutions. 

Drabent defines SLDFA resolution over the Herbrand universe [13J. Chan's 
first method works only when the negated sub-goal has a finite number of 
answers. SLDFA overcomes this by constructing answers for the negative goal 
from a finite number of answers to the negated sub-goal. 

Fages proposes a simple concurrent pruning mechanism over standard SLD 
derivation trees for constructive negation in constraint logic programs [H]. 
Two derivation trees are concurrently constructed. The computed answers 
from one of the trees are used to prune the nodes of the other. Fages' method 
admits an efficient implementation as it is not necessary to deal with complex 
goals with explicit quantifiers outside the constraint part. 

Stuckey provides a constructive negation method for constraint logic programs 
over arbitrary structures [29] . Stuckey's method which is sound and complete 
with respect to the three- valued consequences of the completion of the program 
can be thought of as a generalisation of Chan's. Stuckey uses the following 
property of logic formulae in his simplification procedure. 

->3y.(c A Q) -H- -dy.c V ->3y.(c A Q) 

where c is a constraint and Q is a conjunction of goals. The method need to do 
a satisfiability test when combining ~3y.c with other constraints. A sufficient 
condition for applying Stuckey's method is that the constraint domain has 
the admissible closure property, i.e., — >3|/.c for any admissible constraint c 
can be rewritten as a disjunction of admissible constraints [29]. Dovier et. al. 
prove that the admissible closure property is also a necessary condition for an 
effective implemention of the method [JTJ . 

Constructive intensional negation was studied in [21qTH[2T|2T] . Marchiori [TO] 
addresses the termination of logic programs with respect to constructive nega- 
tion. Lobo [17] studies constructive negation for disjunctive logic programs. 
Ramirez and Falaschi [28] and Moreno-Navaro [221I23II24] extend constructive 
negation for functional logic programs. Dovier et. al. extends Chan's method 
to CLP(SET) where SET is the domain of hereditarily finite sets [12]. SET 
does not satisfy the admissible closure property and hence the constructive 
negation method is complete only for a subset of CLP(SET) [IT] . 

We now compare our method with Chan's and Stuckey's using Ex. [TTJ QVT 
rewrites -i3z:\\st(f3).( y append(x:\\st(/3), y:\\st((3), z),p(z)) to append(x:\\st(/3), y: 



23 



list(/3), z:list(/3)), -i p(z). Both Chan's method and Stuckey's first construct an 
SLD derivation tree of append (x, y, z),p(z) and collect a frontier of the SLD 
derivation, say, 

(x = \\,y = z,p(z)), 1 
(x = [h\x'],y = y',z = [h\z'}, append(x', y',z'),p(z)) J 

Then the negation of this frontier is simplified and put into its disjunctive 
normal form. This gives rise to the following four conjunctive formulae. 

(1) x \\,Vh,x'.(x j£ \h\x'}) 

(2) x ^\\,x = [h\x'], ~^z' .{appendix 1 , y, z'),p([h\z'))) 

(3) x=[],\/h,x'.(x^[h\x'])^p(y) 

(4) x— \\,x— [h\x'], ->p(y), ~3z'. (append(x', y, z'),p([h\z'])) 

Stuckey's method derives (2) and (3) because the constraint parts of (1) and 
(4) are unsatisfiable. Chan's method derives (1),(2) and (3) as it only tests 
satisfiability of atomic constraints. The constraint part of (4) is failed by uni- 
fication in Chan's method as [] is not unifiable with [/z|x']. Neither of these 
methods is effective as (2) is as complex as the original goal. The exists unique 
property allows us to obtain a simpler derived goal without making use of 
SLD derivation, and to eliminate unsatisfiable derived goals without satis- 
fiability tests. Similar comparison can be made between our's and methods 
in [T3ll4|18j since they all construct a frontier of an SLD derivation tree for 
appendix, y,z),p(z). 



8 Conclusion 

We have presented a simplification method that uses typed existence proper- 
ties to rewrite negative goals. The method strictly generalizes an earlier work 
that uses functional dependencies to rewrite negative goals. A typed existence 
property generalizes a functional dependency in that the domains of both in- 
put and output parameters can be restricted to sub-domains and moreover 
one input value may correspond to more than one output values. The method 
consists of rewrite rules one for each kind of typed existence properties. The 
rewrite rules doesn't involve an SLD- derivation of the negated sub-goal nor 
an explicit satisfiability test. 

We have described an implementation of the method and analyzed its complex- 
ity. The implementation uses a digraph and a worklist to represent a negative 
goal so as to avoid futile extractability tests of atoms in the negative goal. An 
algorithm is presented that does the extractability test given an atom and an 
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existence property and introduces new local variables into the atom to make 
it satisfy the existence property. The complexity of the algorithm is linear in 
the size of the atom. 
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